Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 26.1.b
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiEndpoint Release Notes

    25.1

    25.1

    The following issues have been fixed in FortiEndpoint 25.1:

    Dashboard

    Bug ID

    Description
    1076303 Vulnerability dashboard shows wrong numbers for low, medium, high, and critical vulnerabilities.

    Endpoint management

    Bug ID

    Description
    993480 FortiClient unexpectedly disconnects from FortiEndpoint EMS.
    1076058 Under Administration > Authentication Servers, you must edit the username and remove domain\ (or @domain) to authenticate via NTLM instead of Kerberos.
    1085449 Azure domain sync is stuck at 1% because AdDaemon does not send all configured domains to Active Directory connector for syncing.
    1110507 FortiEndpoint EMS does not use Kerberos authentication for LDAP and always uses NTLM.
    1112618 FortiEndpoint EMS fails to recognize endpoints as Microsoft Entra ID-joined devices and puts them in workgroup instead of Entra ID group.
    1116613 Invalid characters in filter by distinguished name causes LDAP result code 201 filter compile error.
    1116767 FortiClient 7.2.7 cannot register with FortiEndpoint EMS because of the following error: Error: mssql: Cannot insert duplicate key row in object 'dbo.Devices' with unique index 'uq_devices_guid'.
    1116781 Error occurs when syncing LDAP after updating EMS.

    Endpoint policy and profile

    Bug ID

    Description
    1082916 EMS considers *.example.private wildcard FQDN an invalid zero trust network access (ZTNA) destination.

    Fortinet Security Fabric devices

    Bug ID

    Description
    1078114 EMS OAuth 2.0 Fabric Connector has the following error: Serial Number format does not match Connector Type.

    Onboarding

    Bug ID

    Description
    1088431 Connecting to EMS fails when using special characters like = in LDAP password.

    Performance

    Bug ID

    Description
    1021702 AD connector has memory loss issue.

    Vulnerability Scan

    Bug ID

    Description
    798409 EMS GUI does not display paths for detected vulnerabilities.

    ZTNA connection rules

    Bug ID

    Description
    1103786 EMS does not support using underscore for ZTNA destinations.
    1118615 Adding ZTNA rules in ZTNA destination profile automatically creates a manually created ZTNA application in application catalog.
    1133163 EMS fails to create ZTNA application due to long FQDN.

    EDR

    Bug ID

    Description
    984125, 992151 Latency caused by an internal handling of muting security events.

    1000559

    In Fortinet pre-defined applications, selecting a group checkbox selects only the first page.

    987989

    Application Control and Exclusion validation error messages regarding the usage of wildcards in the application name/path are not accurate.

    996156

    In Fortinet pre-defined applications, application name is missing from audit logs.

    988393

    Spaces should not be allowed at the beginning or end of exclusion list names.
    988394 Exclusion List name validation - Error message text display issue.

    985337

    Incorrect path length display in error message when importing or exporting exclusions.

    988385

    Cannot close the Import/Export Exclusion window using the Close (X) button.

    Vulnerabilities and Exposures

    FortiEndpoint 25.1 is no longer vulnerable to the following CVE references. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    Description

    958896

    CVE-2023-48786

    958963

    CVE-2025-22855

    1112619

    CVE-2025-22859

    Previous
    Next

    25.1

    25.1

    The following issues have been fixed in FortiEndpoint 25.1:

    Dashboard

    Bug ID

    Description
    1076303 Vulnerability dashboard shows wrong numbers for low, medium, high, and critical vulnerabilities.

    Endpoint management

    Bug ID

    Description
    993480 FortiClient unexpectedly disconnects from FortiEndpoint EMS.
    1076058 Under Administration > Authentication Servers, you must edit the username and remove domain\ (or @domain) to authenticate via NTLM instead of Kerberos.
    1085449 Azure domain sync is stuck at 1% because AdDaemon does not send all configured domains to Active Directory connector for syncing.
    1110507 FortiEndpoint EMS does not use Kerberos authentication for LDAP and always uses NTLM.
    1112618 FortiEndpoint EMS fails to recognize endpoints as Microsoft Entra ID-joined devices and puts them in workgroup instead of Entra ID group.
    1116613 Invalid characters in filter by distinguished name causes LDAP result code 201 filter compile error.
    1116767 FortiClient 7.2.7 cannot register with FortiEndpoint EMS because of the following error: Error: mssql: Cannot insert duplicate key row in object 'dbo.Devices' with unique index 'uq_devices_guid'.
    1116781 Error occurs when syncing LDAP after updating EMS.

    Endpoint policy and profile

    Bug ID

    Description
    1082916 EMS considers *.example.private wildcard FQDN an invalid zero trust network access (ZTNA) destination.

    Fortinet Security Fabric devices

    Bug ID

    Description
    1078114 EMS OAuth 2.0 Fabric Connector has the following error: Serial Number format does not match Connector Type.

    Onboarding

    Bug ID

    Description
    1088431 Connecting to EMS fails when using special characters like = in LDAP password.

    Performance

    Bug ID

    Description
    1021702 AD connector has memory loss issue.

    Vulnerability Scan

    Bug ID

    Description
    798409 EMS GUI does not display paths for detected vulnerabilities.

    ZTNA connection rules

    Bug ID

    Description
    1103786 EMS does not support using underscore for ZTNA destinations.
    1118615 Adding ZTNA rules in ZTNA destination profile automatically creates a manually created ZTNA application in application catalog.
    1133163 EMS fails to create ZTNA application due to long FQDN.

    EDR

    Bug ID

    Description
    984125, 992151 Latency caused by an internal handling of muting security events.

    1000559

    In Fortinet pre-defined applications, selecting a group checkbox selects only the first page.

    987989

    Application Control and Exclusion validation error messages regarding the usage of wildcards in the application name/path are not accurate.

    996156

    In Fortinet pre-defined applications, application name is missing from audit logs.

    988393

    Spaces should not be allowed at the beginning or end of exclusion list names.
    988394 Exclusion List name validation - Error message text display issue.

    985337

    Incorrect path length display in error message when importing or exporting exclusions.

    988385

    Cannot close the Import/Export Exclusion window using the Close (X) button.

    Vulnerabilities and Exposures

    FortiEndpoint 25.1 is no longer vulnerable to the following CVE references. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    Description

    958896

    CVE-2023-48786

    958963

    CVE-2025-22855

    1112619

    CVE-2025-22859

    Previous
    Next